Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
File: iDHWIdGS-S2wk9kzCSweI2tNSXs.mft (raw, json)
Hash identifier: /r7puekoMwa6BuC9FnlS/kRkiEBD0GKOr9XDk+9V1AA=
Subject key identifier: 94:5E:25:9A:3D:FA:E7:CD:32:90:0D:BC:50:0A:7B:E1:20:F7:41:1A
Authority key identifier: 88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
Certificate issuer: /CN=8831d621d192f92db093d933092c1e236b4d497b
Certificate serial: 019A085BB55DFC2FC1D358DEB28A3875FCF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
Manifest number: 16E9
Signing time: Tue 21 Oct 2025 20:00:19 +0000
Manifest this update: Tue 21 Oct 2025 20:00:19 +0000
Manifest next update: Wed 22 Oct 2025 20:00:19 +0000
Files and hashes: 1: 1-6XFLoPOdCVTnXJMZNU0hBiKubk.roa (hash: OxkphaRHymUnb8SN18Gdla2SO6vLVqs5y/4vbMpFmm4=)
2: iDHWIdGS-S2wk9kzCSweI2tNSXs.crl (hash: 552NzGA3Holl7C7VKAfX9xh+qNwHW6sWTvij9YB+vvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:08:5b:b5:5d:fc:2f:c1:d3:58:de:b2:8a:38:75:fc:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8831d621d192f92db093d933092c1e236b4d497b
Validity
Not Before: Oct 21 20:00:19 2025 GMT
Not After : Oct 22 20:00:19 2025 GMT
Subject: CN=945e259a3dfae7cd32900dbc500a7be120f7411a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1c:45:69:06:5c:1b:a3:af:af:e4:01:30:46:
15:d8:79:7c:f4:ab:d1:f4:d4:63:e4:b4:c4:0c:a2:
6d:d2:f3:eb:0e:34:7a:b7:bb:1d:64:73:ea:77:6a:
92:06:0a:4f:ac:22:f6:0d:ec:00:32:64:b4:eb:ec:
a5:16:c6:f0:e0:4a:71:d8:c9:c7:ba:c6:63:9a:c0:
f2:9e:c9:f5:78:d7:6b:5e:f0:c2:d5:22:8f:8f:73:
c2:b5:9a:a8:9a:37:ee:b0:c6:2d:81:ad:b1:8a:7a:
6a:c4:5b:c6:bd:52:7d:9d:b3:e7:84:ca:12:d5:6e:
4f:33:b6:84:61:c7:62:c3:89:2f:92:1b:f8:3d:4d:
47:6a:37:d0:c0:1a:68:0f:17:cf:14:18:1c:7c:a5:
88:94:a1:be:95:27:dd:12:b6:df:e8:0e:74:c9:ad:
30:ec:a0:65:ab:6b:38:be:a4:22:63:38:d1:46:b3:
56:5f:3b:be:1a:94:6e:4d:fa:ef:9e:4b:b1:3e:2c:
98:c7:0c:22:fd:24:0c:74:63:38:22:f6:d8:f1:96:
57:66:b0:6b:78:72:7d:fd:39:54:ef:3b:a0:01:8f:
a0:ee:6d:38:80:49:8e:eb:97:09:fe:7c:cc:2d:8b:
29:1f:ff:d0:56:6d:d6:e7:14:d9:f1:27:68:56:95:
77:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5E:25:9A:3D:FA:E7:CD:32:90:0D:BC:50:0A:7B:E1:20:F7:41:1A
X509v3 Authority Key Identifier:
keyid:88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ed:c9:ba:31:45:33:cd:b4:e1:2d:81:33:39:e1:e5:27:c4:
53:ab:85:a0:7c:1b:79:68:72:13:61:92:f6:49:5d:6f:5a:a6:
8c:c4:65:32:ad:0f:e3:17:1c:6d:29:5d:15:0e:9c:c9:2b:e1:
f5:01:8a:2a:10:10:7c:9f:6c:29:35:1e:4a:90:32:58:be:ad:
9c:04:3e:97:1b:d5:2c:c3:e6:e6:df:1f:da:50:65:fa:78:8e:
1a:f8:6f:4c:1c:ed:ae:a3:cc:b9:12:74:da:84:a2:93:1a:71:
ee:82:c5:8b:d4:78:f6:6c:a8:03:6d:db:e7:41:c2:87:06:1e:
ed:c7:b0:e2:35:50:2d:db:06:a9:0d:e3:32:62:44:c7:db:de:
76:cd:c2:80:92:33:0a:fc:f7:89:c7:0f:e4:d7:52:01:70:59:
a9:a9:6e:42:57:45:be:77:ab:9d:19:bf:29:8e:36:5e:0d:19:
80:ec:3b:ee:b2:70:f2:b8:77:38:d2:e0:26:4d:6a:8d:c7:9b:
1e:48:32:71:91:8b:b5:50:e5:d2:2a:7e:e1:89:c4:ea:70:7b:
66:e5:b1:1d:3f:6d:50:bb:05:65:01:37:59:55:9c:8b:4f:ab:
d4:92:c2:8a:22:56:8b:c7:ef:97:34:f2:9a:bf:df:2f:37:f5:
72:6a:74:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoIW7Vd/C/B01jesoo4dfz3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MzFkNjIxZDE5MmY5MmRiMDkzZDkzMzA5MmMxZTIzNmI0
ZDQ5N2IwHhcNMjUxMDIxMjAwMDE5WhcNMjUxMDIyMjAwMDE5WjAzMTEwLwYDVQQD
Eyg5NDVlMjU5YTNkZmFlN2NkMzI5MDBkYmM1MDBhN2JlMTIwZjc0MTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BxFaQZcG6Ovr+QBMEYV2Hl89KvR
9NRj5LTEDKJt0vPrDjR6t7sdZHPqd2qSBgpPrCL2DewAMmS06+ylFsbw4Epx2MnH
usZjmsDynsn1eNdrXvDC1SKPj3PCtZqomjfusMYtga2xinpqxFvGvVJ9nbPnhMoS
1W5PM7aEYcdiw4kvkhv4PU1HajfQwBpoDxfPFBgcfKWIlKG+lSfdErbf6A50ya0w
7KBlq2s4vqQiYzjRRrNWXzu+GpRuTfrvnkuxPiyYxwwi/SQMdGM4IvbY8ZZXZrBr
eHJ9/TlU7zugAY+g7m04gEmO65cJ/nzMLYspH//QVm3W5xTZ8SdoVpV3DwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJReJZo9+ufNMpANvFAKe+Eg90EaMB8GA1UdIwQY
MBaAFIgx1iHRkvktsJPZMwksHiNrTUl7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS80NDA3ODEtZjYxNC00NTBkLTlkOWYt
MmI4NzYxZDhhMTM3LzEvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS80NDA3ODEtZjYxNC00NTBkLTlkOWYtMmI4NzYxZDhhMTM3
LzEvaURIV0lkR1MtUzJ3azlrekNTd2VJMnROU1hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHe3JujFF
M8204S2BMznh5SfEU6uFoHwbeWhyE2GS9kldb1qmjMRlMq0P4xccbSldFQ6cySvh
9QGKKhAQfJ9sKTUeSpAyWL6tnAQ+lxvVLMPm5t8f2lBl+niOGvhvTBztrqPMuRJ0
2oSikxpx7oLFi9R49myoA23b50HChwYe7cew4jVQLdsGqQ3jMmJEx9veds3CgJIz
Cvz3iccP5NdSAXBZqaluQldFvnernRm/KY42Xg0ZgOw77rJw8rh3ONLgJk1qjceb
HkgycZGLtVDl0ip+4YnE6nB7ZuWxHT9tULsFZQE3WVWci0+r1JLCiiJWi8fvlzTy
mr/fLzf1cmp0dg==
-----END CERTIFICATE-----
Generated at Tue Oct 21 23:02:38 2025 by rpki-client